Affinity

by Canvav3.2.1.4425

Last updated Jun 8, 2026

Award-winning integrated graphic design, photo-editing and publishing solution.

Install with winget

$ winget install --id Canva.Affinity --exact --version 3.2.1.4425

Run in Command Prompt, PowerShell, or Windows Terminal. Prompts for any agreements.

Silent install command for Affinity

Affinity uses MSIX. The silent install switches are (no switches needed).

One-line silent install (x64)

Add-AppxPackage -Path .\Affinity-Affinity-Store-x64-4425-adf53bda2ec2cfe17697bea84177df9f43c74624.msix

See the full silent install reference for Affinity →

Built by Pckgr

For Intune admins

Stop chasing app updates. Pckgr patches them for you.

Automated application patching for Microsoft Intune. Pckgr keeps a curated library of 1,000+ apps continuously up-to-date in your tenant via Microsoft Graph - no manual repackaging, no chasing vendor sites.

Start free 30-day trial

No credit card required.

Installers · v3.2.1.4425

Architecture	Type	Scope	Install	Download
x64	MSIX	-		Direct
arm64	MSIX	-		Direct

Copy a command tailored to that specific architecture, type, and scope - useful when winget would otherwise pick a different default.

Security

19 known CVEs via NVD

medium6.1Patched in wingetCVE-2026-22882affects before 3.1.0Mar 17, 2026
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information.
Vendor advisory
medium6.1Patched in wingetCVE-2026-20726affects before 3.1.0Mar 17, 2026
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information.
Vendor advisory
medium6.1Patched in wingetCVE-2025-66633affects before 3.1.0Mar 17, 2026
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information.
Vendor advisory
medium6.1Patched in wingetCVE-2025-66617affects before 3.1.0Mar 17, 2026
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information.
Vendor advisory
medium6.1Patched in wingetCVE-2025-66503affects before 3.1.0Mar 17, 2026
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information.
Vendor advisory
high7.8Patched in wingetCVE-2025-66342affects before 3.1.0Mar 17, 2026
A type confusion vulnerability exists in the EMF functionality of Canva Affinity. A specially crafted EMF file can trigger this vulnerability, which can lead to memory corruption and result in arbitrary code execution.
Vendor advisory
medium6.1Patched in wingetCVE-2025-66042affects before 3.1.0Mar 17, 2026
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information.
Vendor advisory
medium6.1Patched in wingetCVE-2025-66000affects before 3.1.0Mar 17, 2026
An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information.
Vendor advisory

Showing 8 of 19. Source: NVD, updated 5h ago. Patch status is best-effort: NVD's fix version is compared against the latest version in winget, but the two version formats don't always align. Confirm with the vendor advisory before treating any specific build as safe.

See a CVE that affects your fleet? Push the patched version to Intune in one click with Pckgr - automated patching is the only way to keep up.

Related apps

Open CoDesignOpenCoworkAI
OpenCoworkAI.OpenCoDesignv0.2.0
Open-source desktop AI design tool — prompt to prototype, BYOK, local-first.
Embarcadero Dev-C++Embarcadero Technologies Inc.
Embarcadero.Dev-C++v6.3
A fast, portable, simple, and free C/C++ IDE
SketchUp 2026Trimble, Inc.
Trimble.SketchUp.2026v26.2.243
3D Modeling & Drawing
SketchUp 2025Trimble, Inc.
Trimble.SketchUp.2025v25.0.660
3D Modeling & Drawing
FigmaFigma, Inc.
Figma.Figmav126.5.6
The Collaborative Interface Design Tool
KiroAmazon Web Services
Amazon.Kirov0.12.333
An agentic IDE that helps you do your best work with features such as specs, steering, and hooks.

More from Canva or browse design, editing, graphic-design.

Frequently asked questions

How do I install Affinity on Windows?

Open Windows Terminal, PowerShell, or Command Prompt and run: winget install --id Canva.Affinity --exact --version 3.2.1.4425. winget downloads the installer from Canva and runs it. Requires Windows 10 (1809+) or Windows 11.

How do I install Affinity silently for unattended deployment?

Add --silent and accept the agreements upfront: winget install --id Canva.Affinity --exact 3.2.1.4425 --silent --accept-package-agreements --accept-source-agreements. This is the variant Intune, Configuration Manager, and other deployment tools should use.

What are the silent install switches for Affinity?

Affinity uses MSIX. MSIX packages install silently by default - no switches are needed (Add-AppxPackage -Path .\Affinity-Affinity-Store-x64-4425-adf53bda2ec2cfe17697bea84177df9f43c74624.msix).

How do I uninstall Affinity via winget?

Run: winget uninstall --id Canva.Affinity --exact. Add --silent for unattended uninstalls. winget will use the registered uninstaller from Affinity's Apps & Features entry.

Is Affinity free?

Affinity is distributed under Proprietary. Refer to the publisher (https://www.affinity.studio/) for the full license terms - Wingetly itself does not charge for installation.

Does Affinity work on Windows 10?

Yes, as long as your Windows 10 build supports winget (1809 or newer). winget ships with App Installer on Windows 10/11 and pulls Affinity directly from the publisher.

How do I keep Affinity up to date?

Run winget upgrade --id Canva.Affinity --exact, or winget upgrade --all to update everything winget tracks. We index 7 versions of Affinity from microsoft/winget-pkgs.

Recent versions

3.2.1.4425latest
3.2.0.4351
3.1.0.4231
3.0.3.4027
3.0.2.3912
3.0.1.3808
3.0.0.3791